Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/RD7C0DmJTA-JHw7ywrVYeiigFls.roa
File: RD7C0DmJTA-JHw7ywrVYeiigFls.roa (raw, json)
Hash identifier: UpwAXxJqEX+hR5MOKwiRnPPuKfvgkol8FANArSl5iCo=
Subject key identifier: 44:3E:C2:D0:39:89:4C:0F:89:1F:0E:F2:C2:B5:58:7A:28:A0:16:5B
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 018452567717428EC5582341999040081B0C
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/RD7C0DmJTA-JHw7ywrVYeiigFls.roa
Signing time: Mon 07 Nov 2022 13:45:09 +0000
ROA not before: Mon 07 Nov 2022 13:45:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52041
IP address blocks: 185.227.71.0/24 maxlen: 24
85.202.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:56:77:17:42:8e:c5:58:23:41:99:90:40:08:1b:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 7 13:45:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=443ec2d039894c0f891f0ef2c2b5587a28a0165b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:06:86:a7:e7:23:f6:0d:36:44:ef:88:91:b5:
b3:77:75:76:7b:e1:2d:13:52:9e:fb:d4:34:c8:e2:
a8:5e:73:16:ac:4b:d4:64:74:f4:55:5b:89:b0:52:
fb:f6:ce:5d:12:3b:93:be:29:81:58:1e:e9:f9:a3:
fe:66:dd:e8:43:ed:c1:59:ca:1d:30:9e:ef:16:33:
a3:d4:b9:75:1b:33:a8:68:8c:26:44:19:c4:53:60:
47:4e:d1:18:8d:c1:a5:37:0a:18:4d:63:9d:3a:51:
6a:4e:1e:26:6c:17:01:7f:ba:35:b6:12:ef:e2:31:
ef:78:89:0f:55:58:aa:cf:44:14:fa:eb:c3:6c:a0:
78:72:f1:8b:fc:5c:29:55:44:1c:f7:39:02:66:0c:
7c:3c:d2:12:e6:e5:1d:d4:2d:f1:7a:f9:72:d7:6b:
19:2a:df:ff:c5:b2:99:81:79:ab:81:c0:11:ce:58:
4b:bb:df:68:30:c5:f0:8a:b3:c9:b3:15:ea:89:5d:
ec:a9:16:53:9a:c3:62:e5:4e:eb:63:fa:fa:e1:9f:
9f:d1:20:c7:5b:9c:d6:a1:b2:e0:7e:52:ca:ef:24:
0e:10:ec:8b:17:4d:c3:ef:82:9e:26:6a:c1:9a:2a:
99:8f:6f:85:ce:ea:bd:81:47:5f:3e:1f:aa:66:6b:
d8:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3E:C2:D0:39:89:4C:0F:89:1F:0E:F2:C2:B5:58:7A:28:A0:16:5B
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/RD7C0DmJTA-JHw7ywrVYeiigFls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.202.162.0/24
185.227.71.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:91:d5:64:13:01:65:4e:e6:e3:95:c5:09:8c:41:af:b1:a7:
9f:8f:1b:96:46:10:5c:15:65:b4:c4:9c:44:4f:43:43:72:ae:
58:a6:06:3f:0a:8d:44:22:52:53:97:a8:11:d2:a6:fd:83:77:
97:bf:42:37:a4:4d:c7:7b:d4:73:24:5d:86:8a:a8:13:4b:a3:
1c:6a:bd:7f:97:67:49:92:10:2f:88:4a:ef:38:4b:38:ea:b7:
b9:07:ed:36:25:0d:97:6f:04:5a:23:9e:cf:ad:5d:47:3f:ae:
14:68:db:99:a5:7a:f1:1f:53:a5:ee:3b:5d:bb:d2:b0:09:51:
24:1c:f4:2c:18:1b:2a:ae:44:23:ee:bb:ab:88:6d:a9:64:cc:
91:07:72:9b:b8:c1:1d:df:64:15:b0:74:95:d2:35:b7:50:4e:
76:f8:7e:a8:c3:de:0e:56:6e:39:1d:cc:ad:c8:53:2f:22:03:
b1:a7:09:0e:85:45:01:2a:f0:6d:25:e0:af:86:e8:ba:40:7b:
ae:2f:b0:2e:58:50:ba:7e:db:08:07:60:4e:79:b2:2b:c6:2d:
81:60:2a:0d:29:7a:79:21:7e:6d:da:2f:a0:d1:c0:f8:34:12:
67:48:c6:08:02:00:10:60:7b:1c:94:a6:77:81:6d:92:e4:b7:
72:4c:b1:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org